General
-
Target
74bd631ef494649ae2a0ca110b9fe34bca1fb8e020a7c047cdb1d4af05ca1f46
-
Size
376KB
-
Sample
220122-gwcqvsaafm
-
MD5
7e4a58c2e142dc2a148c6b0fd6a64680
-
SHA1
c637907d5084249134019cb289982ebddc5753bd
-
SHA256
74bd631ef494649ae2a0ca110b9fe34bca1fb8e020a7c047cdb1d4af05ca1f46
-
SHA512
5fa49e0cdab060344047cb689a329dfdf272934a9bdef213f2eca00ea71f8355a76dc048cbadd3c00a90d142e0f7832a1ca963e8ee2212ac678290b65632d5bc
Static task
static1
Malware Config
Extracted
redline
NONAME
45.9.20.111:1355
Targets
-
-
Target
74bd631ef494649ae2a0ca110b9fe34bca1fb8e020a7c047cdb1d4af05ca1f46
-
Size
376KB
-
MD5
7e4a58c2e142dc2a148c6b0fd6a64680
-
SHA1
c637907d5084249134019cb289982ebddc5753bd
-
SHA256
74bd631ef494649ae2a0ca110b9fe34bca1fb8e020a7c047cdb1d4af05ca1f46
-
SHA512
5fa49e0cdab060344047cb689a329dfdf272934a9bdef213f2eca00ea71f8355a76dc048cbadd3c00a90d142e0f7832a1ca963e8ee2212ac678290b65632d5bc
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-